Arbitrary File Upload Vulnerability in TerraMaster TOS 3.1.03 Explorer Application

Arbitrary File Upload Vulnerability in TerraMaster TOS 3.1.03 Explorer Application

CVE-2018-13332 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Directory Traversal in the explorer application in TerraMaster TOS version 3.1.03 allows attackers to upload files to arbitrary locations via the "path" URL parameter.

Learn more about our Web Application Penetration Testing UK.